The vulnerability of the Qlik Sense Enterprise data analysis platform, related to errors in processing input data from higher-level components, allows a perpetrator to execute arbitrary code.

The vulnerability of the Qlik Sense Enterprise data analysis platform is related to errors in processing input data from higher-level components. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by creating specially crafted connection objects remotely...

The vulnerability of the channel_request_lookahead() function in the WSGI server for Python Waitress allows a attacker to send hidden HTTP requests (HTTP Request Smuggling attack).

The vulnerability of the channelrequestlookahead function in the WSGI server for Python Waitress is related to synchronization errors when using shared resources due to inconsistent interpretation of HTTP requests. Exploiting this vulnerability allows a remote attacker to send hidden HTTP request...

The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series systems arises from errors in system configuration or setup. This vulnerability allows attackers to gain unauthorized access to application configuration information.

The vulnerability of microprogramming software in embedded network control controllers of ASPECT Enterprise, NEXUS Series, and MATRIX Series is related to errors in system configuration or setup. Exploiting this vulnerability can allow an attacker to gain unauthorized access to application...

The vulnerability of the application for launching Puppet Agent, related to resource management errors, allows a hacker to trigger a service failure.

The vulnerability of the application for launching Puppet Agent is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the ar5523 component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the ar5523 component in the Linux operating system is related to errors in resource management within the ar5523probe function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the de4x5 component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of DRM/MSM/A6XX components in the Linux operating system is related to errors in reading data beyond the memory boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

PT-2024-10289 · Microsoft · Edge

Name of the Vulnerable Software and Affected Versions: Microsoft Edge Chromium-based affected versions not specified Description: The issue is related to an elevation of privilege vulnerability in Microsoft Edge, which is based on Chromium. This vulnerability can be exploited by a remote attacker...

Security update for postgresql14

This update for postgresql14 fixes the following issues: CVE-2024-10976: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference bsc1233323. CVE-2024-10977: Make libpq discard error messages received during SSL or GSS protocol negotiatio...

DRUPAL-CONTRIB-2024-067

This module enables you to authenticate users through an Identity Provider IdP or OAuth Server, allowing them to log in to your Drupal site. The module does not sufficiently escape query parameters sent to the callback URL when displaying error messages, particularly if the code parameter is...

The vulnerabilities of the s390/qeth component of Linux operating system kernels, which allow a hacker to trigger a service failure

The vulnerability of the s390/qeth component of Linux operating system kernels is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the workqueue component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the workqueue component in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

ROS-20241204-01

A vulnerability in the libstub component of the Linux kernel is related to the use of an uninitialized resource in the uninitialized resource in the efifree function in drivers/firmware/efi/libstub/fdt.c. Exploitation of the of the vulnerability could allow an attacker to cause a denial of servic...

The vulnerability of the stmmac component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the stmmac component in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

Cisco NX-OS Resource Management Errors (CVE-2013-1121)

The regex engine in the BGP implementation in Cisco NX-OS, when a complex regular expression is configured for inbound routes, allows remote attackers to cause a denial of service device reload via a crafted AS path set, aka Bug ID CSCuf49554. This plugin only works with Tenable.ot. Please visit...

The vulnerability of the TCP component in the Linux operating system’s kernel allows attackers to carry out attacks by replacing certain components.

The vulnerability of the TCP component in the Linux operating system’s kernel is related to errors in information representation by the user interface. Exploiting this vulnerability can allow an attacker to carry out an attack through substitution methods...

The vulnerability of the mpt3sas component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the mpt3sas component in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the mm/slab components of the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the mm/slab components in the Linux operating system’s kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

Important: Red Hat Security Advisory: rhc-worker-playbook security update

An update for rhc-worker-playbook is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

firefox: thunderbird: Unhandled Exception in Add-on Signature Verification

The Mozilla Foundation's Security Advisory: The application can fail to account for exceptions thrown by the loadManifestFromFile method during add-on signature verification. This flaw is triggered by an invalid or unsupported extension manifest and could cause runtime errors that disrupt the...

The vulnerability of the ocfs2 component in the Linux operating system allows a hacker to gain elevated privileges within the system.

The vulnerability of the ocfs2 component in the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to gain elevated privileges within the system...